This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "AppSec Washington 2005/Agenda"

From OWASP
Jump to: navigation, search
 
 
(164 intermediate revisions by 3 users not shown)
Line 1: Line 1:
 +
== OWASP DC 2005 Conference Schedule ==
 +
 +
 +
{| style="width:80%" border="0" align="center"
 +
| colspan="3" align="center" style="background:#4058A0; color:white" | '''Day 1 - October 11, 2005'''
 +
|-
 +
| style="width:10%; background:#7B8ABD" | || style="width:40%; background:#BC857A" align="center" | Track 1: Red Auditorium
 +
| style="width:40%; background:#BCA57A" | Track 2: Green Auditorium
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 08:00 - 09:00 || colspan="2" style="width:80%; backgrouroond:#C2C2C2" align="left" | Registration and Coffee
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 09:00 - 09:10 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security ([http://video.google.com/videoplay?docid=-2481289516847680871&q=owasp video of all 3 talks])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 09:10 - 10:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace ([http://www.owasp.org/index.php/Image:AppSec2005DC-Joe_Jarzombek-DHS_SwA_Program_Overview.ppt ppt])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 10:00 - 11:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project  ([http://www.owasp.org/index.php/Image:AppSec2005DC-Ron_Ross-FISMA.ppt ppt])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 11:00 - 11:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 11:20 - 12:30 || style="width:40%; background:#BC857A" align="left" | Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jack_Danahy-Business_Case_for_Application_Security.ppt ppt], [http://video.google.com/videoplay?docid=3853779542023264815&q=owasp video])
 +
| style="width:40%; background:#BCA57A" align="left" | Arian Evans - FishNet Security - The OWASP Tools Survey Project 
 +
([http://www.owasp.org/index.php/Image:AppSec2005DC-Arian_Evans_Tools-Taxonomy.ppt ppt], [http://video.google.com/videoplay?docid=5758230888370998733&q=owasp video])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Alex Stamos - iSEC Partners - Web Services Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Alex_Smolen-OWASP_WebServices_Project.ppt ppt]) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps ([http://www.owasp.org/index.php/Image:AppSec2005DC-Alex_Stamos-Attacking_Web_Services.ppt ppt])
 +
| style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Paul_Black-SAMATE_Project.ppt ppt])
  
== OWASP DC 2005 Conference Schedule ==
+
Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch ([http://www.owasp.org/index.php/Image:AppSec2005DC-Mike_Kass-Tools_Taxonomy.ppt ppt])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 15:00 - 15:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 15:20-16:40 || style="width:40%; background:#BC857A" align="left" | Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR ([http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp video])
 +
| style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - Developing a Reference Dataset ([http://www.owasp.org/index.php/Image:AppSec2005DC-Paul_Black-Reference_Dataset.ppt ppt])
  
{| style="width:700" border="0" align="center"
+
Rick Kuhn - NIST - Software Fault Interactions ([http://www.owasp.org/index.php/Image:AppSec2005DC-Rick_Kuhn-Software_Fault_Interactions.ppt ppt], [http://video.google.com/videoplay?docid=-5233500471539001436&q=owasp video of both talks])
  | align="center" | '''Time''' || '''Title''
+
|-
 +
| style="width:10%; background:#7B8ABD" | 16:40-17:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 17:00 - 18:00 || style="width:40%; background:#BC857A" align="left" | Alex Smolen - Parasoft - Application Logic Defense ([http://video.google.com/videoplay?docid=4473926180612118549&q=owasp video])
 +
| style="width:40%; background:#BCA57A" align="left" | Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing ([http://www.owasp.org/index.php/Image:AppSec2005DC-Dan_Cuthbert-Evolution_of_App_Pen_Testing.ppt ppt], [http://video.google.com/videoplay?docid=4379894308228900017&q=owasp video])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 18:00 - 19:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Bus to Dinner Event at Holiday Inn
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 19:00 - 21:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Dinner Even (Optional) at Holiday Inn
 +
  |-
 +
| colspan="3" align="center" style="background:#4058A0; color:white" | '''Day 2 - October 12, 2005'''
 +
|-
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 08:00 - 09:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Coffee
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 09:00 - 09:50 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Keynote Day 2: Ira Winkler - Secrets of Superspies ([http://www.owasp.org/index.php/Image:AppSec2005DC-Ira_Winkler-Secrets_of_Superspies.ppt ppt])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 09:50 - 10:50 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeremy_Poteet-In_the_Line_of_Fire.ppt ppt], [http://video.google.com/videoplay?docid=-9110574247136866679&q=owasp video of both talks]])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 10:50 - 11:10 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 11:10 - 12:30 || style="width:40%; background:#BC857A" align="left" | Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeff_Williams-OWASP_AppSec_Guide_2.0.ppt ppt]) and OWASP Membership Plan ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeff_Williams-OWASP_Membership.ppt ppt], [http://video.google.com/videoplay?docid=-5332911124544076749&q=owasp video])
 +
| style="width:40%; background:#BCA57A" align="left" | Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities ([http://www.owasp.org/index.php/Image:AppSec2005DC-Danny_Allan-Identity_Theft_Phishing_and_Pharming.ppt ppt])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project ([http://video.google.com/videoplay?docid=7947858567235952851&q=owasp video])
 +
| style="width:40%; background:#BCA57A" align="left" | Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications ([http://www.owasp.org/index.php/Image:AppSec2005DC-Matt_Fisher-Google_Hacking_and_Worms.ppt ppt], [http://video.google.com/videoplay?docid=2018648061521175729&q=owasp video])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 15:00 - 15:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 15:20 - 16:30 || style="width:40%; background:#BC857A" align="left" | Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program ([http://www.owasp.org/index.php/Image:AppSec2005DC-Anthony_Canike-Enterprise_AppSec_Program.ppt ppt])
 +
| style="width:40%; background:#BCA57A" align="left" | Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab ([http://www.owasp.org/index.php/Image:AppSec2005DC-Rogan_Dawes-WebScarab.ppt ppt], [http://video.google.com/videoplay?docid=8437304318271455155&q=owasp video])
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 16:30 - 16:50 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 15:20 - 16:30 || style="width:40%; background:#BC857A" align="left" | John Steven - Cigital - Building a Scalable Software Security Practice within your Organization ([http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp video])
 +
| style="width:40%; background:#BCA57A" align="left" | Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications ([http://www.owasp.org/index.php/Image:AppSec2005DC-Gunnar_Peterson-Identity-Services-in-WebApps.ppt ppt], [http://video.google.com/videoplay?docid=-1807054604513842127&q=owasp video])
 
|}
 
|}

Latest revision as of 11:48, 20 September 2008

OWASP DC 2005 Conference Schedule

Day 1 - October 11, 2005
Track 1: Red Auditorium Track 2: Green Auditorium
08:00 - 09:00 Registration and Coffee
09:00 - 09:10 Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security (video of all 3 talks)
09:10 - 10:00 Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace (ppt)
10:00 - 11:00 Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project (ppt)
11:00 - 11:20 Break
11:20 - 12:30 Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance (ppt, video) Arian Evans - FishNet Security - The OWASP Tools Survey Project

(ppt, video)

12:30 - 13:45 Lunch
13:45 - 15:00 Alex Stamos - iSEC Partners - Web Services Project (ppt) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps (ppt) Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project (ppt)

Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch (ppt)

15:00 - 15:20 Break
15:20-16:40 Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR (video) Paul Black - NIST - Developing a Reference Dataset (ppt)

Rick Kuhn - NIST - Software Fault Interactions (ppt, video of both talks)

16:40-17:00 Break
17:00 - 18:00 Alex Smolen - Parasoft - Application Logic Defense (video) Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing (ppt, video)
18:00 - 19:00 Bus to Dinner Event at Holiday Inn
19:00 - 21:00 Dinner Even (Optional) at Holiday Inn
Day 2 - October 12, 2005
08:00 - 09:00 Coffee
09:00 - 09:50 Keynote Day 2: Ira Winkler - Secrets of Superspies (ppt)
09:50 - 10:50 Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets (ppt, video of both talks])
10:50 - 11:10 Break
11:10 - 12:30 Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 (ppt) and OWASP Membership Plan (ppt, video) Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities (ppt)
12:30 - 13:45 Lunch
13:45 - 15:00 Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project (video) Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications (ppt, video)
15:00 - 15:20 Break
15:20 - 16:30 Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program (ppt) Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab (ppt, video)
16:30 - 16:50 Break
15:20 - 16:30 John Steven - Cigital - Building a Scalable Software Security Practice within your Organization (video) Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications (ppt, video)